Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wne7Ao8kec_unDA1hvuHY8Ex1As.roa
File: Wne7Ao8kec_unDA1hvuHY8Ex1As.roa (raw, json)
Hash identifier: 8gCRfdE6wQsq80P7CplpaodvCG3z1vmMB/UsiGXqT80=
Subject key identifier: 5A:77:BB:02:8F:24:79:CF:EE:9C:30:35:86:FB:87:63:C1:31:D4:0B
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 090D9B53
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wne7Ao8kec_unDA1hvuHY8Ex1As.roa
Signing time: Wed 11 May 2022 19:31:01 +0000
ROA not before: Wed 11 May 2022 19:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.12.0/24 maxlen: 24
77.90.191.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.152.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.155.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
77.90.164.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
77.90.180.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
213.209.130.0/24 maxlen: 24
213.209.133.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.136.0/24 maxlen: 24
213.209.144.0/24 maxlen: 24
213.209.147.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151886675 (0x90d9b53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 11 19:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a77bb028f2479cfee9c303586fb8763c131d40b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9b:73:1e:d7:88:6f:af:69:5d:d5:30:e7:c1:
68:99:60:5c:4a:92:51:97:95:5d:d7:62:be:b0:77:
44:60:8b:a4:80:b8:87:62:f8:80:2c:40:4b:b3:34:
92:24:f9:1a:80:c7:e8:08:16:a6:0c:ad:50:0f:16:
37:fa:eb:6f:2b:62:b8:ae:fd:c8:b5:14:1a:ea:78:
0f:19:8c:70:be:bf:8a:55:77:35:c1:aa:a0:cf:d8:
7b:9b:a2:4d:1b:d5:36:25:d6:db:b6:5e:66:be:01:
2b:23:05:45:31:e8:71:69:9c:61:98:20:d1:13:bb:
36:a7:17:d5:9b:c0:c1:4f:39:2c:8f:ca:f9:d3:52:
2a:36:db:d6:de:92:43:e8:3f:46:8a:e9:e7:e6:67:
70:3e:df:60:2e:54:34:ff:97:02:86:fc:eb:fa:e6:
64:9a:17:db:be:9f:31:7c:cf:61:65:04:3b:c1:f3:
df:6b:ba:12:d6:4e:87:59:99:ae:ed:cc:c2:1c:7e:
91:55:78:5b:55:6b:b3:53:88:cf:b4:93:bd:b4:d1:
ff:2f:96:5b:7c:df:5c:91:bb:83:2a:f8:28:7a:75:
7f:79:e7:88:4d:70:55:92:46:ec:b2:e1:5a:11:b2:
42:f0:19:0a:01:8d:46:66:ac:e7:cc:51:62:f4:bd:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:77:BB:02:8F:24:79:CF:EE:9C:30:35:86:FB:87:63:C1:31:D4:0B
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wne7Ao8kec_unDA1hvuHY8Ex1As.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.138.255
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.152.0/22
77.90.164.0/24
77.90.178.0/24
77.90.180.0/24
77.90.185.0/24
77.90.191.0/24
185.230.12.0/23
213.209.130.0/24
213.209.133.0/24
213.209.136.0/24
213.209.138.0/24
213.209.144.0/24
213.209.146.0/23
213.209.156.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
0b:93:ac:0a:3d:03:9f:70:b8:78:2f:57:e3:98:69:1b:7a:51:
c2:f4:8d:c5:ad:ac:a0:3c:f5:7e:5c:2a:73:f1:d8:51:1e:b0:
5c:93:61:93:93:63:92:1b:b3:3b:14:b9:b8:cb:a7:1a:ea:a0:
b1:cd:0f:38:de:70:f5:21:6c:a4:47:2d:4f:f4:2e:cd:a1:f0:
36:0d:b1:39:8c:6a:9c:df:f3:15:73:2f:fb:80:93:24:2b:1a:
25:b8:d2:fa:41:a8:ac:a1:e4:2c:0c:f6:99:d1:35:a0:ed:ad:
14:cd:d1:d5:fe:8a:42:7f:ab:d9:1c:9e:8c:af:46:76:01:23:
d0:3a:11:4d:dc:96:03:1d:2f:5e:12:11:de:ee:84:10:9b:fc:
fe:18:35:b7:96:8a:d9:5d:49:b5:83:9b:a7:54:a5:36:51:a5:
5f:fd:52:f3:ac:a2:a8:86:cc:3d:36:3e:9c:51:8b:34:52:9d:
a8:d8:f3:20:07:21:cd:99:65:11:39:0a:29:2b:4b:f9:4e:70:
31:cc:00:48:b9:d4:40:f3:3c:3d:e5:cc:7f:56:b0:c4:3c:2e:
2c:23:2f:ed:fa:c3:1d:a6:54:ce:c2:21:8d:ee:51:d3:63:98:
71:fc:4c:22:a1:18:f2:93:b8:c1:07:ab:6b:d5:b7:f8:d2:7f:
b0:13:8e:0e
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIECQ2bUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDUx
MTE5MzEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWE3N2JiMDI4ZjI0
NzljZmVlOWMzMDM1ODZmYjg3NjNjMTMxZDQwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKObcx7XiG+vaV3VMOfBaJlgXEqSUZeVXddivrB3RGCLpIC4
h2L4gCxAS7M0kiT5GoDH6AgWpgytUA8WN/rrbytiuK79yLUUGup4DxmMcL6/ilV3
NcGqoM/Ye5uiTRvVNiXW27ZeZr4BKyMFRTHocWmcYZgg0RO7NqcX1ZvAwU85LI/K
+dNSKjbb1t6SQ+g/Rorp5+ZncD7fYC5UNP+XAob86/rmZJoX276fMXzPYWUEO8Hz
32u6EtZOh1mZru3Mwhx+kVV4W1Vrs1OIz7STvbTR/y+WW3zfXJG7gyr4KHp1f3nn
iE1wVZJG7LLhWhGyQvAZCgGNRmas58xRYvS9zAcCAwEAAaOCAqIwggKeMB0GA1Ud
DgQWBBRad7sCjyR5z+6cMDWG+4djwTHUCzAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L1duZTdBbzhrZWNfdW5EQTFodnVIWThFeDFBcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
twYIKwYBBQUHAQcBAf8EgacwgaQwgYsEAgABMIGEMAwDBAdNWoADBABNWoIwDAME
Ak1ahAMEAE1aigMEAE1ajDAMAwQBTVqOAwQATVqUAwQCTVqYAwQATVqkAwQATVqy
AwQATVq0AwQATVq5AwQATVq/AwQBueYMAwQA1dGCAwQA1dGFAwQA1dGIAwQA1dGK
AwQA1dGQAwQB1dGSAwQA1dGcMBQEAgACMA4DBQAqBCnCAwUAKgQpxzANBgkqhkiG
9w0BAQsFAAOCAQEAC5OsCj0Dn3C4eC9X45hpG3pRwvSNxa2soDz1flwqc/HYUR6w
XJNhk5NjkhuzOxS5uMunGuqgsc0PON5w9SFspEctT/QuzaHwNg2xOYxqnN/zFXMv
+4CTJCsaJbjS+kGorKHkLAz2mdE1oO2tFM3R1f6KQn+r2RyejK9GdgEj0DoRTdyW
Ax0vXhIR3u6EEJv8/hg1t5aK2V1JtYObp1SlNlGlX/1S86yiqIbMPTY+nFGLNFKd
qNjzIAchzZllETkKKStL+U5wMcwASLnUQPM8PeXMf1awxDwuLCMv7frDHaZUzsIh
je5R02OYcfxMIqEY8pO4wQera9W3+NJ/sBOODg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org